Application No. 1 0/63 1 ,206 
Amendment dated December 1 1, 2008 



-2- 



Docket No.: Ml 103.70263US00 



AMENDMENTS TO THE CLAIMS 
This listing of claims replaces all prior versions, and listings, of claims in the application: 

1. (Canceled) 

2. (Currently Amended) The method of claim [[1]] 43 wherein step (a) determining 
whether the display name of the second user is equivalent to the display name of the contact 
stored in the contact data store comprises computing a clean name from each display name and 
comparing clean names of the two display names to d e t e rmine if the two display names are 
equivalent . 

3. (Canceled) 

4. (Currently Amended) The method of claim [[3]] 43 wherein step (a2) generating a 
warning comprises displaying a name conflict indicator next to each display name associated 
with a contact identity whose authentication level (1) is less than the highest 
authentication/certification level of all contact identities with equivalent display names or (2) 
equals the highest authentication/certification level of all contact identities with an equivalent 
display name and t o which at least [[two]] one other contact identiti e s identity w ith an equivalent 
display name has been identified having an nam e s hav e equal authentication levels -level . 

5. -8. (Canceled) 

9. (Currently amended) The method of claim [[5]] 43 further comprising: 

^ preventing a user from communicating with another user based on [[the]] a 
security policy when the other user has a predetermined authentication level. 

10. (Currently amended) The method of claim [[1]] wherein step (b) generating the warning 
comprises displaying a dialog box having all display names that are equivalent to the iirst display 
name of the first user listed therein. 
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1 1 . (Currently amended) The method of claim [[1]] 49 wherein ttie_step [[(c)]] of receiving 
user input comprises assigning the alternative display name as an alias to the selected display 
name which alias is not equivalent to either of the first and s e cond display name and the selected 
display names name and which alias replaces the selected display name. 

12. (Currently amended) The method of claim 1 further comprising 43 wherein displaying the 
warning comprises : 

(e) displaying an authentication indicator next to a display name that is not equivalent 
to another display name, which authentication indicator displays the authentication level of the 
associated contact. 

13. (Original) The method of claim 12 wherein each contact can have one of a predetermined 
number of authentication levels and wherein the authentication indicator that is displayed is unique to 
one of the authentication levels. 

14. (Canceled) 

15. (Currently amended) The method of claim 1 4 wher e in step (a) compris e s 51 further 
comprising receiving from a user of the computing device an input setting the security policy-fe^ 
appli e s to that us e r . 

16. (Currently amended) The method of claim H wherein st e p (a) comprises 51 further 
comprising receiving from a system administrator an input setting [[a]] the security policy-tti^ 
applies to a user . 

1 7. (Currently amended) The method of claim [[14]] 51 wherein step (d) selectively 
responding to the event comprises warning a user when the security policy is set to warn and the 
user attempts to communicate with an unauthenticated and uncertified contact. 
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1 8. (Currently amended) The method of claim [[14]] 51 wherein step (d) selectively 
responding to the event comprises preventing a user from communicating with an uncertified 
contact when the security policy is set to restrict and the user attempts to communicate with an 
uncertified contact. 

1 9. (Currently amended) The method of claim [[14]] 51 wherein step (d) selectively 
responding to the event comprises allowing a user to commimicate with an unauthenticated and 
uncertified contact when the security policy is set to allow without warning and the user attempts 
to communicate with an unauthenticated and uncertified contact. 

20. (Currently amended) The method of claim [[14]] 5 1 wherein st e p (c) determining the 
authentication level of the first user comprises : 

[[(cl)]]compiling a contact list of contacts with whom th e us e r is attempting to 
communicate ; 

[[(cl)]] checking the contact list to determine contacts that are not authenticated; 

[[(c3)]] checking the unauthenticated contacts to determine whether a certification policy 
applies to any unauthenticated contact; and 

[[(c4)]] placing an unauthenticated contact on the list of unauthenticated and uncertified 
contacts when no certification policy applies to that contact. 

21. -42. (canceled) 

43 . (New) A method of operating a computing device providing an endpoint in a peer-to-peer 
collaboration system in which each user has an identity and a display name, the method 
comprising: 

in response to communicating with a first user, recording the first user as a contact 
in a contact data store in memory associated with the computing device, the recording 
comprising storing at least an identity and display name of the first user; 

in response to receiving a communication from a second user: 

determining whether the display name of the second user is equivalent to 

the display name of a user in the contact data store; 
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when the display name of the second user is equivalent to the display name 
of a stored contact in the contact data store, and the identity of the user is different 
than the identity of the contact with the matching display name, generating a 
warning on a display associated with the computing device. 

44. (New) The method of claim 43, further comprising, for each of a plurality of instances of 
the display name of the second user appearing on a display screen of the computing device, 
displaying the warning in conjunction with the display name. 

45. (New) The method of claim 44, wherein at least one of the plurality of instances comprises 
a listing of contacts in a graphical user interface adapted to receive user input selecting a contact 
with which to communicate. 

46. (New) The method of claim 43, wherein generating the warning in conjunction with the 
display name comprises displaying an icon adjacent an instance of the display name. 

47. (New) The method of claim 43, further comprising: 

upon receiving a communication from a new user for which there is no entry in the 
contact data store, making an entry for the new user in the contact data store, the making an 
entry comprising displaying a graphical user interface presenting information about the 
new user and containing an input area adapted to receive input from a user of the 
computing device authenticating the new user. 

48. (New) The method of claim 47, wherein: 

when the input from the user of the computing device authenticating the new user is 
received, storing in the entry for the new user an indication that the new user is 
authenticated; and 

when the input from the user of the computing device authenticating the new user is 
not received, storing in the entry for the new user an indication that the new user is 
unauthenticated. 
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49. (New) The method of claim 43, wherein: 

the warning comprises a name conflict indicator displayed in a first graphical user 
interface to the computing device; and 
the method further comprises: 

in response to user input received through the first graphical user interface, 
the user input being associated with the name conflict indicator, displaying on the 
computing device a plurality of equivalent display names that are equivalent to the 
first display name; 

receiving user input from a user of the computing device specifying an 
alternative display name for a selected display name, the alternative display name 
being selected by the user from the plurality of equivalent display names 
displayed on the computing device, the alternative display name being associated 
with a selected identity and being different than the first display name; and 

identifying on a second graphical user interface of the computing device 
the selected identity with the alternative display name, the second graphic user 
interface providing a function related to controlling communication within the 
peer-to-peer collaboration system, the communication being between the 
computing device and a second device associated with the selected identity. 

50. (New) The method of claim 43, wherein generating the waming comprises generating a 
warning about a potentially masquerading user having a display name equivalent to the display 
name of the first user, the potentially masquerading user selected from a set of users, including the 
first user, having display names equivalent to the display name of the first user, the potentially 
masquerading user being selected based on relative authorization levels of the users in the set. 

5 1 . (New) A method of operating a computing device providing an endpoint in a peer-to-peer 
collaboration system in which each user has an identity and a display name, the method 
comprising: 

in response to an event that triggers a ftinction that includes display of a display 

name of a first user: 
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determining an authentication level of the first user, the authentication level 
comprising an authentication level being selected from a set comprising a certified 
level, an authenticated level, and an unauthenticated level, the certified level being 
higher then the authenticated level and the authenticated level being higher than the 
unauthenticated level; 

selectively responding to the event based on the authentication level and a 
security policy, the security policy having at least an allow option, a restrict option 
and a warn option, and the selectively processing comprising: 

when the security policy option is determined to be allow, 
presenting on a graphical user interface the display name of the first user in 
conjunction with performance of the fimction in response to the event; 

when the security policy option is determined to be warn and the 
authentication level is less than or equal to a threshold level, presenting on 
the graphical user interface the display name of the first user in conjunction 
with performance of the function, the presenting including presenting a 
warning on the authentication level of the first user; and 

when the security policy option is set to restrict and the 
authentication level is less than or equal to the threshold level, omitting 
performance of the function. 

52. (New) The method of claim 5 1 , wherein the threshold level is determined dynamically 
based on an authentication level of at least one other user having a display name equivalent to the 
display name of the first user. 

53. (New) The method of claim 5 1 , wherein the selectively responding comprises processing 
the event based on the authentication level and a security policy and the nature of the response to 
the event. 

54. (New) The method of claim 5 1 , further comprising: 

upon receiving a communication from a new user for which there is no entry in a 
contact data store, making an entry for the new user in the contact store, the making an 
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entry comprising displaying a graphical user interface presenting information about the 
new user and containing an input area through which a user of the computing device can 
authenticate the new user. 

5 1 . (New) The method of claim 5 1 , wherein the event comprises receiving a communication 
from the first user. 

56. (New) The method of claim 51, wherein the event comprises receiving user input 
including a command to initiate communication with a user. 

57. (New) A computer storage medium comprising computer-executable instructions that, 
when executed on a computing device providing an endpoint in a peer-to-peer collaboration system 
in which each user has an identity and a display name, perform a method comprising: 

in response to communicating with a first user, recording the first user as a contact 
in a contact data store in memory associated with the computing device, the recording 
comprising storing at least an identity and display name of the first user; 
in response to receiving a communication from a second user: 

determining whether the display name of the second user is equivalent to 
the display name of a user in the contact data store; and 

when the display name of the second user is equivalent to the display name 
of a stored contact in the contact data store, but the identity of the user is different 
than the identity of the contact with the matching display name, generating a 
warning on a display associated with the computing device. 

58. (New) A computer storage medium comprising computer-executable instructions that, 
when executed on a computing device providing an endpoint in a peer-to-peer collaboration 
system in which each user has an identity and a display name, perform a method comprising: 

in response to an event that triggers a function that includes display of a display 
name of a first user: 

determining an authentication level of the first user, the authentication level 
comprising an authentication level selected from a set comprising a certified level. 
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an authenticated level, and an unauthenticated level, the certified level being higher 
then the authenticated level and the authenticated level being higher than the 
unauthenticated level; 

selectively responding to the event based on the authentication level and .a 
security policy, the security policy having at least an allow option, a restrict option 
and a warn option, and the selectively processing comprising: 

when the security policy option is determined to be allow, 
presenting on a graphical user interface the display name of the first user in 
conjunction with of a function performed in response to the event; 

when the security policy option is determined to be warn and the 
authentication level is less than or equal to a threshold level, presenting on 
the graphical user interface the display name of the first user in conjunction 
with perfonnance of the function, the presenting including presenting a 
warning on the authentication level of the first user; and 

when the security policy option is set to restrict and the 
authentication level is less than or equal to the threshold level, omitting 
performance of the function. 

59. (New) A computer storage medixim comprising computer-executable instructions that, 
when executed on a computing device providing an endpoint in a peer-to-peer collaboration 
system in which each user has an identity and a display name, perform a method comprising: 
in response to an event adapted to trigger a function associated with a first user 
different than a user of the computing device: 

determining an authentication level of the first user, the authentication level 
comprising an authentication level being selected from a set comprising a certified 
level, an authenticated level, and an unauthenticated level, the certified level being 
higher then the authenticated level and the authenticated level being higher than the 
unauthenticated level; 

selectively responding to the event based on the authentication level and a 
security policy, the security policy having at least an allow option, a restrict option 
and a warn option, and the selectively processing comprising: 
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when the security policy option is set to restrict and the 
authentication level is less than or equal to the threshold level, blocking 
performance of the function. 

60. (New) The computer storage medium of claim 59, wherein the method further comprises: 

when the security policy option is determined to be warn and the authentication 
level is less than or equal to a threshold level, presenting on the graphical user interface the 
display name of the first user in conjunction with performance of the function in response 
to the event, the presenting including presenting a warning on the authentication level of 
the first user. 

6 1 . (New) The computer storage medium of claim 60, wherein determining the authentication 
level of the first user comprises accessing a contact data store in memory associated with the 
computing device. 

62. (New) The computer storage medium of claim 61, wherein the method further comprises, 
prior to the event, in response to communicating with the first user, recording the first user as a 
contact in the contact data store, the recording comprising storing at least an identity, display name 
and authentication level of the first user. 

63. (New) The computer storage medium of claim 62, wherein the method further comprises, 
determining the authentication level of the first user, the determining comprising: 

displaying a graphical user interface presenting information about the first user and 
containing an input area adapted to receive input from the user of the computing device 
authenticating tiie first user; 

when input is received firom the user of the computing device authenticating the 
first user, determining that the first user has an authenticated level of authenticated. 

64. (New) The computer storage medium of claim 62, wherein the method further comprises, 
determining the authentication level of the first user, the determining comprising: 
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receiving information on authentication level of users of the peer-to-peer 
collaboration system from a network administrator; 

when the received information comprises an indication that the first user is 
certified, determining that the authentication of the first user is certified. 

65. (New) The method of claim 64, wherein: 

the authentication level comprises an authentication level selected from a set 
comprising a certified level, an authenticated level, and an unauthenticated level, the 
certified level being higher then the authenticated level and the authenticated level being 
higher than the unauthenticated level; and 

when the first user is not determined to be certified: 

displaying a graphical user interface presenting information about the first 
user and containing an input area adapted to receive input fi-om a user of the 
computing device authenticating the first user; 

when input is received from the user of the computing device authenticating 
the first user, determining that the first user has an authenticated level of 
authenticated; and 

when input is not received fi-om the user of the computing device 
authenticating the first user, determining that the first user has an unauthenticated 
level of authenticated. 
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